$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/82456ff2-f8c4-4c5a-9458-82d909f83f7d.roa File: 82456ff2-f8c4-4c5a-9458-82d909f83f7d.roa (raw, json) Hash identifier: mK8nw5ocdT7prVXzrYFbPG/w4yNEaOUN+kseA5GuO0c= Subject key identifier: 6D:2B:B9:5C:02:A6:C9:B6:A3:3B:24:41:E7:E4:0D:C4:23:99:95:89 Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 1985CF43B8FFC9D15FC9876F91DEB7DE2AAEC597 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/82456ff2-f8c4-4c5a-9458-82d909f83f7d.roa Signing time: Fri 13 Jun 2025 00:00:09 +0000 ROA not before: Fri 13 Jun 2025 00:00:09 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.196.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 00:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:85:cf:43:b8:ff:c9:d1:5f:c9:87:6f:91:de:b7:de:2a:ae:c5:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Jun 13 00:00:09 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=27ba71c00025dcbc739c92adbaf92bad090c17536b9e0247a6f1393ef07f5d07, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:94:d1:7b:43:f3:48:91:eb:36:51:3b:fa:49: 81:bf:00:30:00:b8:3b:2c:c5:7a:9e:f0:95:fd:23: 45:01:8d:f4:d7:81:b9:88:bf:74:93:48:c7:80:67: 80:23:3d:2c:10:d7:3a:37:e1:43:10:ae:45:81:42: bd:8a:90:14:c9:6c:b8:bd:ac:2b:6e:e1:3d:38:72: 18:08:5c:c1:ba:5b:2a:83:c8:af:21:f6:16:4d:33: 69:30:4b:b0:5e:c2:ef:8e:27:22:cb:62:92:2f:11: 4f:c3:07:dc:2c:20:6b:d2:6d:17:c2:41:1e:66:54: 25:0c:d9:1f:80:d3:52:0a:d5:fa:c3:ea:f1:e6:44: 8e:3f:bd:6f:6c:5d:d9:52:24:fd:3b:83:5f:f6:b2: 0c:1c:fd:a5:f4:4f:52:a1:3d:7f:64:4b:e3:ed:ee: 67:19:da:00:c0:1f:2a:c0:82:2e:68:e8:08:b9:ac: 5b:80:bf:a3:fb:96:4e:0f:64:28:4e:bd:0c:8f:26: 80:e2:fa:ad:c1:d9:34:c3:02:f3:a4:bd:97:ec:41: 51:42:cd:23:1c:7c:cf:5d:e2:f4:0c:5e:e9:a8:ca: f6:1d:eb:b4:63:b6:d4:7f:b1:a3:c5:7a:47:a9:3f: d4:5b:f4:41:94:bc:ec:38:cb:75:a0:85:44:14:a4: 10:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:2B:B9:5C:02:A6:C9:B6:A3:3B:24:41:E7:E4:0D:C4:23:99:95:89 X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/82456ff2-f8c4-4c5a-9458-82d909f83f7d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.196.0/22 Signature Algorithm: sha256WithRSAEncryption 99:19:cd:41:c5:ee:b6:8c:5e:55:a6:8a:c8:e3:50:bf:da:07: f0:bb:0c:28:47:ae:71:ca:23:3d:6d:9e:8b:0f:74:d4:39:c0: 1f:fe:37:09:f0:2b:e8:47:47:4e:62:9e:6a:46:c4:fb:7c:c9: 58:78:1f:80:93:61:e7:3e:3c:62:93:8c:f4:59:83:1c:6b:e9: fb:ce:b7:f8:26:87:1a:24:98:38:a2:e1:0c:af:55:ca:87:e4: ce:d7:ca:c1:95:e2:4b:4e:fa:02:6a:00:25:a3:60:a8:10:51: 42:a7:1f:17:e8:13:c8:30:61:99:87:d1:f3:f2:6f:b7:5b:51: de:b9:fc:2b:ba:c3:b7:ec:8c:21:0b:50:5c:22:27:58:fe:66: 86:01:5d:d2:21:44:48:7e:37:de:41:3d:0b:5e:ef:6b:78:ae: 21:1a:6f:60:23:dd:e8:e9:3a:81:06:3a:8d:4a:19:2e:46:99: 1a:85:9f:67:bb:ea:5e:59:06:fb:12:93:0d:95:ce:23:1a:1e: e4:f1:cb:49:2f:74:ca:97:31:5a:cc:eb:81:03:3c:7e:c5:71: 92:10:37:07:d4:2d:36:61:ca:98:02:c7:3f:8a:d3:56:f7:1e: 53:01:2e:47:8f:f4:29:27:c4:83:4a:d3:54:de:a4:9d:ff:6d: fd:07:02:b6 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUGYXPQ7j/ydFfyYdvkd633iquxZcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI1MDYxMzAwMDAwOVoX DTI1MDcxODIzNTk1OVowejFJMEcGA1UEBRNAMjdiYTcxYzAwMDI1ZGNiYzczOWM5 MmFkYmFmOTJiYWQwOTBjMTc1MzZiOWUwMjQ3YTZmMTM5M2VmMDdmNWQwNzEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvZTRe0PzSJHrNlE7+kmBvwAwALg7 LMV6nvCV/SNFAY3014G5iL90k0jHgGeAIz0sENc6N+FDEK5FgUK9ipAUyWy4vawr buE9OHIYCFzBulsqg8ivIfYWTTNpMEuwXsLvjiciy2KSLxFPwwfcLCBr0m0XwkEe ZlQlDNkfgNNSCtX6w+rx5kSOP71vbF3ZUiT9O4Nf9rIMHP2l9E9SoT1/ZEvj7e5n GdoAwB8qwIIuaOgIuaxbgL+j+5ZOD2QoTr0MjyaA4vqtwdk0wwLzpL2X7EFRQs0j HHzPXeL0DF7pqMr2Heu0Y7bUf7GjxXpHqT/UW/RBlLzsOMt1oIVEFKQQ5QIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFG0ruVwCpsm2ozskQefkDcQjmZWJMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 LzgyNDU2ZmYyLWY4YzQtNGM1YS05NDU4LTgyZDkwOWY4M2Y3ZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCrynEMA0GCSqGSIb3DQEBCwUAA4IBAQCZGc1Bxe62jF5VporI41C/ 2gfwuwwoR65xyiM9bZ6LD3TUOcAf/jcJ8CvoR0dOYp5qRsT7fMlYeB+Ak2HnPjxi k4z0WYMca+n7zrf4JocaJJg4ouEMr1XKh+TO18rBleJLTvoCagAlo2CoEFFCpx8X 6BPIMGGZh9Hz8m+3W1HeufwrusO37IwhC1BcIidY/maGAV3SIURIfjfeQT0LXu9r eK4hGm9gI93o6TqBBjqNShkuRpkahZ9nu+peWQb7EpMNlc4jGh7k8ctJL3TKlzFa zOuBAzx+xXGSEDcH1C02YcqYAsc/itNW9x5TAS5Hj/QpJ8SDStNU3qSd/239BwK2 -----END CERTIFICATE-----Generated at Sat Jun 14 06:22:07 2025 by rpki-client